ID
VAR-201407-0384
CVE
CVE-2014-3321
TITLE
Cisco IOS XR Software MPLS Packet Handling Denial of Service Vulnerability
Trust: 0.9
DESCRIPTION
Cisco IOS XR 4.3.4 and earlier on ASR 9000 devices, when bridge-group virtual interface (BVI) routing is enabled, allows remote attackers to cause a denial of service (chip and card hangs) via a series of crafted MPLS packets, aka Bug ID CSCuo91149. Cisco IOS is the interconnected network operating system used on most Cisco system routers and network switches. A denial of service vulnerability exists in Cisco IOS XR Software MPLS packet processing, allowing an attacker to exploit a vulnerability to initiate a denial of service attack. Cisco IOS XR is prone to a remote denial-of-service vulnerability. Attackers can exploit this issue to cause the affected device to crash, denying service to legitimate users. This issue is being tracked by Cisco Bug ID CSCuo91149
Trust: 2.52
IOT TAXONOMY
| category: | ['Network device'] | sub_category: | - | Trust: 0.6 |
AFFECTED PRODUCTS
| vendor: | cisco | model: | ios xr | scope: | lte | version: | 4.3.4 | Trust: 1.8 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 4.3.1 | Trust: 1.6 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 4.3.0 | Trust: 1.6 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 4.3.2 | Trust: 1.6 |
| vendor: | cisco | model: | asr 9000 rsp440 router | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | cisco | model: | asr 9904 | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | cisco | model: | asr 9001 | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | cisco | model: | asr 9912 | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | cisco | model: | asr 9922 | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | cisco | model: | asr 9006 | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | cisco | model: | asr 9010 | scope: | eq | version: | - | Trust: 1.0 |
| vendor: | cisco | model: | asr 9000 series rsp440 | scope: | - | version: | - | Trust: 0.8 |
| vendor: | cisco | model: | asr 9001 router | scope: | - | version: | - | Trust: 0.8 |
| vendor: | cisco | model: | asr 9006 router | scope: | - | version: | - | Trust: 0.8 |
| vendor: | cisco | model: | asr 9010 router | scope: | - | version: | - | Trust: 0.8 |
| vendor: | cisco | model: | asr 9904 router | scope: | - | version: | - | Trust: 0.8 |
| vendor: | cisco | model: | asr 9912 router | scope: | - | version: | - | Trust: 0.8 |
| vendor: | cisco | model: | asr 9922 router | scope: | - | version: | - | Trust: 0.8 |
| vendor: | cisco | model: | ios xr | scope: | lte | version: | <=4.3.4 | Trust: 0.6 |
| vendor: | cisco | model: | ios xr | scope: | eq | version: | 4.3.4 | Trust: 0.6 |
CVSS
SEVERITY | CVSSV2 | CVSSV3 | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|
PROBLEMTYPE DATA
| problemtype: | CWE-20 | Trust: 1.9 |
THREAT TYPE
specific network environment
Trust: 0.6
TYPE
input validation
Trust: 0.6
CONFIGURATIONS
PATCH
| title: | Cisco IOS XR Software MPLS Packet Denial of Service Vulnerability | url: | http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-3321 | Trust: 0.8 |
| title: | 34936 | url: | http://tools.cisco.com/security/center/viewAlert.x?alertId=34936 | Trust: 0.8 |
| title: | Patch for Cisco IOS XR Software MPLS Packet Handling Denial of Service Vulnerability | url: | https://www.cnvd.org.cn/patchInfo/show/47697 | Trust: 0.6 |
EXTERNAL IDS
| db: | NVD | id: | CVE-2014-3321 | Trust: 3.4 |
| db: | SECTRACK | id: | 1030597 | Trust: 1.1 |
| db: | BID | id: | 68536 | Trust: 1.0 |
| db: | JVNDB | id: | JVNDB-2014-003479 | Trust: 0.8 |
| db: | CNNVD | id: | CNNVD-201407-471 | Trust: 0.7 |
| db: | CNVD | id: | CNVD-2014-04458 | Trust: 0.6 |
| db: | VULHUB | id: | VHN-71261 | Trust: 0.1 |
REFERENCES
| url: | http://tools.cisco.com/security/center/content/ciscosecuritynotice/cve-2014-3321 | Trust: 2.3 |
| url: | http://tools.cisco.com/security/center/viewalert.x?alertid=34936 | Trust: 1.7 |
| url: | http://www.securitytracker.com/id/1030597 | Trust: 1.1 |
| url: | http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-3321 | Trust: 0.8 |
| url: | http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2014-3321 | Trust: 0.8 |
| url: | http://www.cisco.com/ | Trust: 0.3 |
CREDITS
Cisco
Trust: 0.3
SOURCES
| db: | CNVD | id: | CNVD-2014-04458 |
| db: | VULHUB | id: | VHN-71261 |
| db: | BID | id: | 68536 |
| db: | JVNDB | id: | JVNDB-2014-003479 |
| db: | CNNVD | id: | CNNVD-201407-471 |
| db: | NVD | id: | CVE-2014-3321 |
LAST UPDATE DATE
2024-11-23T22:18:35.374000+00:00
SOURCES UPDATE DATE
| db: | CNVD | id: | CNVD-2014-04458 | date: | 2014-07-22T00:00:00 |
| db: | VULHUB | id: | VHN-71261 | date: | 2017-01-12T00:00:00 |
| db: | BID | id: | 68536 | date: | 2014-07-16T00:58:00 |
| db: | JVNDB | id: | JVNDB-2014-003479 | date: | 2014-07-22T00:00:00 |
| db: | CNNVD | id: | CNNVD-201407-471 | date: | 2014-07-24T00:00:00 |
| db: | NVD | id: | CVE-2014-3321 | date: | 2024-11-21T02:07:51.750 |
SOURCES RELEASE DATE
| db: | CNVD | id: | CNVD-2014-04458 | date: | 2014-07-22T00:00:00 |
| db: | VULHUB | id: | VHN-71261 | date: | 2014-07-18T00:00:00 |
| db: | BID | id: | 68536 | date: | 2014-07-15T00:00:00 |
| db: | JVNDB | id: | JVNDB-2014-003479 | date: | 2014-07-22T00:00:00 |
| db: | CNNVD | id: | CNNVD-201407-471 | date: | 2014-07-24T00:00:00 |
| db: | NVD | id: | CVE-2014-3321 | date: | 2014-07-18T00:55:04.923 |